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DETAILED ACTION 
Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S. C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

Claims 1-7, 9, 10, 12-15 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Araujo (6393488 Bl) in view of Boden et al (6615357 Bl). 

With respect to Claim 1, Araujo meets the limitation of "a method for enabling a network 
between a first processor and a second processor using at least one additional processor separate 
from the first processor and the second processor, wherein the first processor and the second 
processor are each identifiable by a name" on column 3, lines 45-49 and on column 5, lines 63- 
67; and "receiving, at the at least one additional processor, on behalf of the first processor, 
information that includes the name of the second processor" on column 6, lines 9-18; and 
"receiving, at the at least one additional processor, on behalf of the second processor, 
information that includes the name of the first processor" on column 6, lines 19-26; and 
"determining a first virtual address for the first processor based on the information received on 
behalf of the second processor and a second virtual address for the second processor based on the 
information received on behalf of the first processor, such that the first and second virtual 
addresses uniquely identify the first and second processors, respectively, and are routable 
through the network" on column 6, lines 26-33; and "providing, by the at least one additional 
processor, to the first processor the second virtual address and to the second processor the first 
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virtual address to enable one or more tunnels between the first and the second processors" partly 
on column 7, lines 3-13. The first processor is represented by the device in the first network 
while the second processor is represented by the device in the second network. The additional 
processor is represented by the NAT system. Araujo however does not explicitly state that 
tunnels are established between the two processors. However Boden et al discloses this on 
column 6, lines 4-9. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 

With respect to Claim 2, Araujo meets all the limitation except for the following 
limitation. The limitation of "establishing, by the first processor, one or more tunnels from the 
first processor to the second processor using the first and second virtual addresses" is met by 
Boden et al on column 6, lines 4-9. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 

With respect to Claim 3 ? Araujo meets all the limitation except for the following 
limitation. The limitation of "establishing, by the first processor, one or more tunnels through a 
base network from the first processor to the second processor using the first and second virtual 
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addresses" is met by Boden et al on column 6, lines 4-9. The NAT address used after the tunnel 
is set up is the virtual address. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 

With respect to Claim 4, Araujo meets all the limitation except for the following 
limitation. The limitation of "establishing, by the first processor, one or more tunnels through a 
base network from the first processor to the second processor using the first and second virtual 
addresses" is met by Boden et al on column 6, lines 4-9, 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 

With respect to Claim 5, Araujo meets the limitation of "wherein each of the names 
includes a first portion and a second portion" on column 6, lines 9-14. The names include a URL 
name and a corresponding IP address. 

With respect to Claim 6, Araujo meets all the limitation except for the following 
limitation. The limitation of "establishing a tunnel between the first processor and the at least 
one additional processor to communicate information between the first processor and the at least 
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one additional processor" is met by Boden et al on column 6, lines 4-9. The VPN NAT 
represents the additional processor. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 

With respect to Claim 7, Araujo meets the limitation of "receiving, at the at least one 
additional processor, the information on behalf of the first processor through the tunnel 
established between the first processor and the at least one additional processor" on column 6, 
lines 9-14. The PC represents the first processor. 

With respect to Claim 9, Araujo meets the limitation of "determining information about a 
first local network connected to the first processor based on the information received on behalf 
of the second processor and information about a second local network connected to the second 
processor based on the information received on behalf of the first processor, wherein each local 
network includes one or more other processors separate from the at least one additional 
processor" on column 3, lines 45-49; and "providing by the at least one additional processor to 
the first processor the information regarding the local network connected to the second processor 
and to the second processor the information regarding the local network connected to the first 
processor" on column 5, lines 63-67 and on column 6, lines 1-8; and "enabling communications 
between the one or more other processors in the first local network and the one or more other 
processors in the second local network using the information about the first and second local 
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networks" on column 5, lines 45-49. Araujo however does not explicitly meet the following 
limitation. 

The limitation of "establishing, by the first processor, one or more tunnels from the first 
processor to the second processor using the first and second virtual addresses" is met by Boden 
et al on column 5, lines 49-54. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 

With respect to Claim 10, its limitation is similar to Claim 9 limitation. The first local 
interface is inherent with the information regarding the connections established between the two 
processors as disclosed in Araujo on column 3, lines 60-67 and on column 4, lines 1-10. 

With respect to Claim 12, its limitation is similar to Claim 1 limitation and hence its 
rejection can be found therein. 

With respect to Claim 13, its limitation is similar to Claim 2 limitation and hence its 
rejection can be found therein. 

With respect to Claim 14, all the limitation is met by Araujo except for the following 
limitation. The limitation of "meansfor establishing a tunnel between the first processor and the 
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system to communicate information between the first processor and the system" is met by Boden 
et al on column 6, lines 4-9. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 

With respect to Claim 15, Araujo partly meets the limitation of "a tunneling interface that 
receives, on behalf of the first processor, information that includes a name of the second 
processor, and receives, on behalf of the second processor, information that includes the name of 
the first processor" on column 7, lines 40-48; and "a controller that determines a first virtual 
address for the first processor based on the information received on behalf of the second 
processor and a second virtual address for the second processor based on the information 
received on behalf of the first processor such that the first and second virtual addresses uniquely 
identify the first and second processors, respectively, and are routable through the network, and 
provides to each of the first and second processors the first and second virtual addresses to 
enable one or more tunnels between the first and the second processors" on column 7, lines 53- 
65 and on column 4, lines 54-56. Even though Araujo discloses a NAT being implemented in a 
VPN, he however does not explicitly disclose tunnels as being established between the end 
nodes. This is however disclosed by Boden et al on column 6, lines 4-9. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Boden et al within the system of Araujo because tunneling 
allows for secure distribution of data within an insecure network. 
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Claims 8 and 1 1 are rejected under 35 U.S. C. 103(a) as being unpatentable over Araujo 
(6393488 Bl) in view of Boden et al (6615357 Bl) in further view of Valencia (5918019). 

With respect to Claim 8, the combination of Araujo and Boden et al meet all the 
limitation except for the following limitation. The limitation of "determining, based on the 
information received on behalf of the second processor, information about a firewall that 
selectively restricts a flow of information into the first processor; and providing, by the at least 
one additional processor, to the firewall the determined information such that information 
flowing from the second processor to the first processor on the enabled one or more tunnels is 
allowed by the firewall into the first processor" is met by Valencia on column 4, lines 21-43. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Valencia within the combination of Araujo and Boden et 
al because the firewall is necessary to protect a private network from external intruders. 

With respect to Claim 1 1, all the limitation is already discussed in Claim 10 rejection 
except for the limitation of a cryptographic information being the data that is exchanged between 
the two processors. This limitation is met by Valencia on column 7, lines 1-32. 

It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine the teachings of Valencia within the combination of Araujo and Boden et 
al because encrypting information before it is sent prevents an attacker from being able to 
decipher the information being sent. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tracey Akpati whose telephone number is 703-305-7820. The 
examiner can normally be reached on 8.30am-6.00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Vu can be reached on 703-305-4393. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 

Please note the Patent Office will be moving to the Alexandria campus in October. 
The new phone number for myself, Tracey Akpati is (571) 272-3846, my SPE, Kim Vu is 
(571) 272-3859 and the receptionist is (571) 272-2100, 



OTA 




